ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bolke de Bruin (JIRA)" <j...@apache.org>
Subject [jira] [Issue Comment Deleted] (RANGER-842) Allow PAM for authentication
Date Sat, 13 Feb 2016 23:46:18 GMT

     [ https://issues.apache.org/jira/browse/RANGER-842?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Bolke de Bruin updated RANGER-842:
----------------------------------
    Comment: was deleted

(was: 1) Yes just setting it to PAM should work
2) No additional configuration is required for Kerberos authentication except whatever is
already in place to use Kerberos (we use it with sssd). PAM has a standard interface that
is used. )

> Allow PAM for authentication
> ----------------------------
>
>                 Key: RANGER-842
>                 URL: https://issues.apache.org/jira/browse/RANGER-842
>             Project: Ranger
>          Issue Type: Improvement
>          Components: admin
>    Affects Versions: 0.5.1, 0.6.0
>            Reporter: Bolke de Bruin
>              Labels: authentication, security
>             Fix For: 0.5.1, 0.6.0
>
>         Attachments: 0002-RANGER-842-pam-authentication.patch
>
>
> Ranger currently uses shadow based authentication if configured for unix authentication.
This way of authenticating is somewhat outdated as any recent Linux system (and many of the
BSDs) have PAM available. PAM allows multiple authentication sources and also does authorization.
> Ranger should be able to use PAM for authentication



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message